Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/278A9182E50511EE97E6F259C4F9AE02.roa
File: 278A9182E50511EE97E6F259C4F9AE02.roa (raw, json)
Hash identifier: Y21oFQqVsqqYsM2EPL/YfA+dD5kvd/JZCucrNLqLhUw=
Subject key identifier: F3:D4:0C:5A:7B:BB:83:62:48:CB:46:5B:59:07:45:25:34:F3:23:2A
Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5
Certificate serial: 050F
Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/278A9182E50511EE97E6F259C4F9AE02.roa
Signing time: Wed 25 Sep 2024 00:14:57 +0000
ROA not before: Wed 25 Sep 2024 00:14:57 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 138997
IP address blocks: 103.172.134.0/23 maxlen: 24
2407:d340::/32 maxlen: 48
Validation: Failed, certificate revoked on Sun 17 Nov 2024 07:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1295 (0x50f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917419E
Validity
Not Before: Sep 25 00:14:57 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66f35601-258a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5f:91:bb:fc:45:cb:2e:cd:d1:be:6e:8d:4d:
97:f1:f9:46:c8:3b:b5:dc:8c:16:14:fc:1c:0f:64:
b9:4e:03:74:91:c2:e6:d3:9c:6d:15:3d:15:c6:98:
2c:3d:ee:e7:ee:b4:9c:a6:77:37:28:57:6d:3e:dc:
36:20:f3:0b:ef:2c:0e:b0:d0:a8:8c:4f:28:6d:65:
09:75:3e:3b:41:1d:4b:3c:50:30:4f:62:1d:0c:b4:
e7:c5:75:eb:11:00:58:94:6c:cf:21:5e:c1:e2:d0:
98:72:fe:95:08:16:1d:ab:40:b6:a1:0f:d5:34:35:
c3:ea:bb:a2:0c:e7:18:33:65:a9:cd:d5:5f:81:66:
bb:5c:34:9a:9f:fc:15:92:60:1d:42:c9:5a:bd:3d:
1f:2d:61:4b:46:78:12:4e:0b:b5:b2:8b:32:ef:f0:
87:44:bc:33:11:89:41:1d:78:98:db:7e:7a:77:7e:
f2:f8:df:0e:e0:76:1f:0a:c8:3c:00:8b:c8:9b:ee:
0d:2c:d3:ce:2d:ea:15:57:ec:60:69:7d:bf:9d:5c:
13:91:df:81:f3:07:c4:ba:d5:cc:a1:db:c0:79:77:
63:51:23:9c:4f:c2:36:c2:5a:62:04:65:7b:d2:f8:
3f:45:68:22:18:be:e7:bc:3c:7b:90:76:00:de:2e:
ce:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D4:0C:5A:7B:BB:83:62:48:CB:46:5B:59:07:45:25:34:F3:23:2A
X509v3 Authority Key Identifier:
keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/278A9182E50511EE97E6F259C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.134.0/23
IPv6:
2407:d340::/32
Signature Algorithm: sha256WithRSAEncryption
d3:24:3d:59:18:c5:27:b3:97:a2:3d:24:43:8b:1c:f4:58:77:
0a:93:1a:b2:50:74:c5:0d:ae:c5:f0:ca:a0:6a:20:58:c4:07:
33:18:87:6a:c9:b2:ca:9d:50:f5:53:74:fc:14:f6:53:8b:00:
c7:d3:4b:99:f0:97:25:a9:7e:8d:d8:0d:6a:70:2b:eb:e2:ce:
88:17:7d:6c:0c:94:b0:67:9e:80:7e:71:6d:ca:f2:20:c6:e0:
71:6b:44:4f:12:08:9e:dc:da:e8:c8:ed:30:73:03:62:e9:5f:
8f:0d:64:d2:79:15:31:04:3e:72:a2:55:2e:b8:b4:e2:3a:7c:
27:d2:4c:d2:84:30:11:9c:94:b9:1e:a3:63:b1:94:28:c6:6e:
6c:00:f2:79:1d:86:f8:96:90:42:79:73:7d:9b:30:7e:78:c5:
9d:63:ef:7e:3d:85:e9:57:a8:5b:e1:9b:95:6c:60:78:fc:c2:
db:dc:fc:49:7f:0d:c8:55:43:fc:49:00:ff:6d:f4:5f:3d:03:
b1:b9:29:39:e9:d2:86:a8:63:9a:14:36:fd:d5:20:ed:9c:88:
06:16:7c:d9:1f:dd:2d:34:64:db:68:64:ca:1c:4b:a6:35:30:
14:db:b9:38:cb:36:f6:8c:3d:5f:75:cf:6b:9e:34:c5:71:36:
b7:a8:c7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:19 2025 by rpki-client